Learn about incident detection techniques in Operational Technology (OT) environments through this conference talk from BSides Budapest 2024. Discover practical approaches for identifying attacker traces in heterogeneous Windows environments where traditional security tools like EDR solutions cannot be deployed. Explore batch scripting techniques that leverage standard Windows binaries in innovative ways, ensuring compatibility across Windows versions from XP to 11. Gain insights from real-world cyber incident response experiences specifically tailored for SCADA/HMI devices and OT Ethernet networks where CPU load restrictions and limited PowerShell access present unique challenges.
Batch and Breaches in Operational Technology - Windows Security Detection Techniques
BSides Budapest IT Security Conference via YouTube
Overview
Syllabus
BSidesBUD2024: Batch & Breaches in OT
Taught by
BSides Budapest IT Security Conference
Related Courses
-
Secure OT Network Architecture
-
Fundamentals of OT Cybersecurity (ICS/SCADA)
-
Intro to Windows Digital Forensics and Incident Response
-
Artificial Intelligence Industrial Control Systems Security
-
Fullstack Cybersecurity Analytics Bootcamp (Live Online)
-
Incident Response for ICS: Differences Between OT and IT Environments
